Dell Emc Openmanage Server Administrator

Do you want an email whenever new security vulnerabilities are reported in Dell Emc Openmanage Server Administrator?

By the Year

In 2024 there have been 0 vulnerabilities in Dell Emc Openmanage Server Administrator . Last year Emc Openmanage Server Administrator had 1 security vulnerability published. Right now, Emc Openmanage Server Administrator is on track to have less security vulnerabilities in 2024 than it did last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	1	7.80
2022	0	0.00
2021	0	0.00
2020	1	9.10
2019	4	7.25
2018	0	0.00

It may take a day or so for new Emc Openmanage Server Administrator vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Dell Emc Openmanage Server Administrator Security Vulnerabilities

Dell OpenManage Server Administrator, versions 11.0.0.0 and prior, contains an Improper Access Control vulnerability

CVE-2023-43079 7.8 - High - October 13, 2023

Dell OpenManage Server Administrator, versions 11.0.0.0 and prior, contains an Improper Access Control vulnerability. A local low-privileged malicious user could potentially exploit this vulnerability to execute arbitrary code in order to elevate privileges on the system. Exploitation may lead to a complete system compromise.

Authorization

Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities

CVE-2020-5377 9.1 - Critical - July 28, 2020

Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities. An unauthenticated remote attacker could potentially exploit these vulnerabilities by sending a crafted Web API request containing directory traversal character sequences to gain file system access on the compromised management station.

Directory traversal

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain an XML external entity (XXE) injection vulnerability

CVE-2019-3722 7.5 - High - June 06, 2019

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain an XML external entity (XXE) injection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to read arbitrary server system files by supplying specially crafted document type definitions (DTDs) in an XML request.

XXE

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability

CVE-2019-3723 9.1 - Critical - June 06, 2019

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability. A remote unauthenticated attacker could potentially manipulate parameters of web requests to OMSA to create arbitrary files with empty content or delete the contents of any existing file, due to improper input parameter validation

Improper Input Validation

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability

CVE-2019-3720 4.9 - Medium - April 25, 2019

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially exploit this vulnerability to gain unauthorized access to the file system by exploiting insufficient sanitization of input parameters.

Directory traversal

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability

CVE-2019-3721 7.5 - High - April 25, 2019

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability. A remote unauthenticated attacker may send crafted requests with overlapping ranges to cause the application to compress each of the requested bytes, resulting in a crash due to excessive memory consumption and preventing users from accessing the system.

Allocation of Resources Without Limits or Throttling

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Dell Emc Openmanage Server Administrator or by Dell? Click the Watch button to subscribe.

Dell
Vendor

Dell Emc Openmanage Server Administrator
Product

Dell Emc Openmanage Server Administrator

By the Year

Recent Dell Emc Openmanage Server Administrator Security Vulnerabilities

Dell OpenManage Server Administrator, versions 11.0.0.0 and prior, contains an Improper Access Control vulnerability CVE-2023-43079 7.8 - High - October 13, 2023

Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities CVE-2020-5377 9.1 - Critical - July 28, 2020

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain an XML external entity (XXE) injection vulnerability CVE-2019-3722 7.5 - High - June 06, 2019

Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability CVE-2019-3723 9.1 - Critical - June 06, 2019

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain a Directory Traversal Vulnerability CVE-2019-3720 4.9 - Medium - April 25, 2019

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability CVE-2019-3721 7.5 - High - April 25, 2019